/*
 * This library is part of OpenCms -
 * the Open Source Content Management System
 *
 * Copyright (c) Alkacon Software GmbH & Co. KG (http://www.alkacon.com)
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2.1 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
 * Lesser General Public License for more details.
 *
 * For further information about Alkacon Software GmbH & Co. KG, please see the
 * company website: http://www.alkacon.com
 *
 * For further information about OpenCms, please see the
 * project website: http://www.opencms.org
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 */

package org.opencms.repository;

import org.opencms.configuration.CmsConfigurationException;
import org.opencms.configuration.CmsParameterConfiguration;
import org.opencms.db.CmsUserSettings;
import org.opencms.file.CmsObject;
import org.opencms.file.wrapper.CmsObjectWrapper;
import org.opencms.file.wrapper.I_CmsResourceWrapper;
import org.opencms.main.CmsException;
import org.opencms.main.CmsLog;
import org.opencms.main.OpenCms;
import org.opencms.security.CmsRole;
import org.opencms.workplace.CmsWorkplace;

import java.security.MessageDigest;
import java.util.ArrayList;
import java.util.Collections;
import java.util.List;
import java.util.Map;
import java.util.concurrent.TimeUnit;

import org.apache.commons.codec.binary.Hex;
import org.apache.commons.lang3.RandomStringUtils;
import org.apache.commons.logging.Log;

import com.google.common.cache.CacheBuilder;

/**
 * Creates a repository session to access OpenCms.<p>
 *
 * The configuration of the used {@link I_CmsResourceWrapper} is done here.
 * This is the main class to get access to the resources in the VFS of
 * OpenCms. The method {@link #login(String, String)} logs in to OpenCms
 * and returns a {@link CmsRepositorySession} to use for basic file and
 * folder operations.<p>
 *
 * The project and the site to use for the access to OpenCms is read out
 * of the user settings.<p>
 *
 * @see CmsObjectWrapper
 *
 * @since 6.5.6
 */
public class CmsRepository extends A_CmsRepository {

    /** The log object for this class. */
    private static final Log LOG = CmsLog.getLog(CmsRepository.class);

    /** Random value used for hashing login credentials for the CmsObject cache. */
    private static String m_passwordSalt = RandomStringUtils.randomAlphanumeric(10);

    /** The name of the parameter of the configuration. */
    private static final String PARAM_WRAPPER = "wrapper";

    /** Timed cache for CmsObjects. */
    private Map<String, CmsObject> m_cmsObjectCache;

    /** The list of configured wrappers of the repository. */
    private List<I_CmsResourceWrapper> m_wrappers;

    /**
     * Empty default constructor.<p>
     */
    public CmsRepository() {

        super();
        m_wrappers = new ArrayList<I_CmsResourceWrapper>();
        CacheBuilder<?, ?> builder = CacheBuilder.newBuilder().concurrencyLevel(4).expireAfterWrite(
            30,
            TimeUnit.SECONDS);
        m_cmsObjectCache = (Map<String, CmsObject>)(builder.build().asMap());
    }

    /**
     * Gets the cache key for a username/password pair.
     *
     * @param user the user name
     * @param password the password
     * @return the cache key to use
     */
    private static String getLoginKey(String user, String password) {

        try {
            MessageDigest md5 = MessageDigest.getInstance("MD5");
            md5.update(user.getBytes("UTF-8"));
            md5.update(new byte[] {0});
            md5.update(password.getBytes("UTF-8"));
            md5.update(new byte[] {0});
            md5.update(m_passwordSalt.getBytes("UTF-8"));
            return Hex.encodeHexString(md5.digest());
        } catch (Exception e) {
            return null;
        }

    }

    /**
     * @see org.opencms.repository.A_CmsRepository#initConfiguration()
     */
    @Override
    public void initConfiguration() throws CmsConfigurationException {

        CmsParameterConfiguration config = getConfiguration();
        List<I_CmsResourceWrapper> wrapperObjects = CmsRepositoryManager.createResourceWrappersFromConfiguration(
            config,
            PARAM_WRAPPER,
            LOG);
        m_wrappers = Collections.unmodifiableList(wrapperObjects);
        super.initConfiguration();
    }

    /**
     * @see org.opencms.repository.I_CmsRepository#initializeCms(org.opencms.file.CmsObject)
     */
    public void initializeCms(CmsObject cms) {

        // do nothing
    }

    /**
     * @see org.opencms.repository.A_CmsRepository#login(java.lang.String, java.lang.String)
     */
    @Override
    public I_CmsRepositorySession login(String userName, String password) throws CmsException {

        CmsObject cms;
        // Cache CmsObjects for 30 seconds to avoid expensive password checks
        // (We always copy the cached values, so it's safe for multithreading)
        String cacheKey = getLoginKey(userName, password);
        CmsObject origCms = m_cmsObjectCache.get(cacheKey);
        String configuredProject = getConfiguration().getString("project", null);
        String configuredSite = getConfiguration().getString("root", null);
        String roleStr = getConfiguration().getString("role", CmsRole.WORKPLACE_USER.getRoleName());
        CmsRole requiredRole = null;
        if (!"any".equals(roleStr)) {
            if (roleStr.indexOf("/") == -1) {
                requiredRole = CmsRole.valueOfRoleName(roleStr).forOrgUnit(null);
            } else {
                requiredRole = CmsRole.valueOfRoleName(roleStr);
            }
        }
        String project = configuredProject;
        String site = configuredSite;
        if (origCms != null) {
            cms = OpenCms.initCmsObject(origCms);
        } else {
            cms = OpenCms.initCmsObject(OpenCms.getDefaultUsers().getUserGuest());
            cms.loginUser(userName, password);
            if (requiredRole != null) {
                OpenCms.getRoleManager().checkRole(cms, requiredRole);
            }
            if ((site == null) || (project == null)) {
                CmsUserSettings settings = new CmsUserSettings(cms);
                if (site == null) {
                    site = CmsWorkplace.getStartSiteRoot(cms, settings);
                }
                if (project == null) {
                    project = settings.getStartProject();
                }
            }
            cms.getRequestContext().setSiteRoot(site);
            cms.getRequestContext().setCurrentProject(cms.readProject(project));
            m_cmsObjectCache.put(cacheKey, OpenCms.initCmsObject(cms));
        }

        // set the object wrapper as an attribute in the request context, so that it can be
        // used everywhere a CmsObject is accessible.
        CmsObjectWrapper objWrapper = new CmsObjectWrapper(cms, m_wrappers);
        boolean addBOM = getConfiguration().getBoolean("addBOM", true);
        objWrapper.setAddByteOrderMark(addBOM);
        cms.getRequestContext().setAttribute(CmsObjectWrapper.ATTRIBUTE_NAME, objWrapper);

        return new CmsRepositorySession(objWrapper, getFilter(), isTranslationEnabled() ? getTranslation() : null);
    }

}